🏛Privacy Policy

Privacy Policy

Effective Date: September 1, 2025

This Privacy Policy describes how Testberichteinstitut LLC, 522 W Riverside Ave, Suite N, Spokane, WA 99201, United States (“we”, “our”, or “Testberichteinstitut”) collects, uses, and processes personal data when you visit testberichteinstitut.de (the “Website”).

We operate this Website from the United States. The Website primarily addresses users in Germany, Austria, and Switzerland. Where applicable, we comply with the EU General Data Protection Regulation (GDPR) and the Swiss Federal Act on Data Protection (FADP).

1. Data Controller

Testberichteinstitut LLC
522 W Riverside Ave, Suite N
Spokane, WA 99201
United States

Privacy inquiries: [email protected]

(If required under Art. 27 GDPR, an EU representative will be designated.)

PART I: COMPREHENSIVE INTERNATIONAL PRIVACY POLICY & DATA PROTECTION MANIFESTO

Effective Date: June 9, 2026

Data Controller: Testberichteinstitut LLC (hereinafter referred to as the „Institute“ or „Controller“)

Section 1: Scope, Applicability, and Cross-Border Regulatory Framework

This comprehensive Privacy Policy governs the collection, processing, storage, algorithmic evaluation, and transfer of personal data by Testberichteinstitut LLC through its primary web domain testberichteinstitut.de and all associated subdomains, application programming interfaces (APIs), and digital systems (collectively, the „Platform“).

As a corporate entity organized under the laws of the State of Wyoming, United States of America, but operating within global and European digital spheres, the Institute enforces a multi-jurisdictional compliance framework. This includes alignment with:

  • The Regulation (EU) 2016/679 of the European Parliament and of the Council (General Data Protection Regulation / GDPR);
  • The Swiss Federal Act on Data Protection (FADP);
  • The California Consumer Privacy Act (CCPA) as amended by the California Privacy Rights Act (CPRA); and
  • Applicable United States federal and state data privacy statutes.

Section 2: Comprehensive Categorization of Processed Data

The Institute processes distinct categories of personal and institutional data, collected via automated system interactions, user submissions, or third-party data repositories.

2.1 Technical Access and Telemetric Telemetry Data (Automated Processing)

Upon establishing an electronic connection to the Platform, system architecture logs data sequences necessary to preserve cryptographic security, operational stability, and load-balancing efficiency:

  • Internet Protocol (IP) Address: Processed dynamically and systematically anonymized or pseudonymized at the network gateway layer, unless malicious vector behavior requires security logging.
  • System Event Logfiles: Inclusive of standardized timestamps (UTC), Uniform Resource Locators (URLs) accessed, bytes transferred, HTTP response codes, and referring domain parameters.
  • User-Agent Metadata: Inclusive of browser type, versioning, operating system, localized language configurations, and rendering engine specifications.

2.2 Formal Contact and Communication Context Data

Data voluntarily transferred to the Institute via encrypted transmission forms, academic inquiries, corporate registrations, or direct electronic mail protocols:

  • Identity Metrics: Full legal name, corporate title, professional affiliation, and associated authority verification credentials.
  • Electronic Communications Data: Primary email addresses, corporate telephone lines, and full contextual contents of communications, including attached physical documentation.

2.3 Account, Verification, and Authentication Infrastructure Data

Data required to initiate, maintain, and audit an active corporate or executive profile partnership within our authenticated database registers:

  • Credential Sets: Pseudonymized user identifiers, encrypted cryptographic password hashes (utilizing industry-standard hashing protocols), and system-generated session identifiers.
  • Corporate Entity Verification Markers: Official company registry numbers, verified commercial addresses, and digitized documentation proving corporate representation authority.

2.4 Behavioral Tracking, Analytical Metrics, and Telemetry

Data collected through browser cache interactions, tracking pixels, and analytical integrations, strictly subject to prior explicit opt-in authentication:

  • Clickstream pathways, interaction heatmaps, precise session duration metrics, structural search queries deployed within the internal database, and conversion tracking milestones.

Section 3: Definitive Purposes of Processing and Statutory Legal Bases

The Institute processes personal data strictly under specified, explicit, and legitimate corporate and academic purposes, backed by recognized statutory legal bases under Article 6 of the GDPR and equivalent international regulations:

Functional Operational PurposeSpecific Data Category UtilizedStatutory Legal Basis (GDPR / FADP / US Law)
System Security, Cyber-Defense, & Integrity: Prevention of DDoS vectors, brute-force exploits, and algorithmic data scraping.Technical Access Data, IP Addresses, Logfiles.Art. 6(1)(f) GDPR: Overriding legitimate interest in securing institutional digital infrastructure.
B2B / Corporate Communication: Responding to institutional inquiries, data verification requests, and partner onboarding.Identity Metrics, Email, Communication Content.Art. 6(1)(b) GDPR: Pre-contractual measures; Art. 6(1)(f) GDPR: Legitimate interest in responsive professional relations.
Provision of Authenticated Registry Services: Creation and display of Premium Profiles and Leader Portals.Account Data, Corporate Verification Metrics.Art. 6(1)(b) GDPR: Execution of contract; Fulfillment of statutory Terms of Service.
Dissemination of Market Intelligence Reports: Distribution of institutional briefings and research updates.Subscriber Identity Metrics, Email Addresses.Art. 6(1)(a) GDPR: Prior explicit, revocable Consent.
Algorithmic Platform Optimization & Ad Placement: Performance auditing and monetization framework deployment.Analytics Telemetry, Tracking Pixels, Cookies.Art. 6(1)(a) GDPR: Prior explicit Consent via the Cookie Preference Architecture.

Section 4: Advanced Cookie Architecture and Granular Consent Management

The Platform employs a multi-tiered Cookie and local storage framework designed to respect user autonomy while preserving system functionality.

  • Category A: Essential & Structurally Mandatory Cookies: These tools are hard-coded into the core framework of the Platform to handle encrypted sessions, security authentications, and compliance settings. They operate under Art. 6(1)(f) GDPR and do not require user consent, as the Platform cannot safely function without them.
  • Category B: Analytical, Performance, and Affiliate Tracking Cookies: These third-party tracking scripts monitor user interaction patterns and affiliate conversions. They are deactivated by default. They will only deploy if the user explicitly opts in via our interactive Consent Management Provider (CMP).
  • Revocation Mechanism: Users retain the absolute statutory right to unilaterally withdraw consent at any time. A persistent link labeled „Cookie Settings“ is embedded in the global footer of the Platform, allowing real-time modification of active tracking permissions.

Section 5: Third-Party Analytics, Enterprise Infrastructure, and Monetization Integrations

With the explicit consent of the user, the Platform integrates tracking, marketing, and monetization services managed by external tech enterprises. These partners may act as independent or joint data controllers.

5.1 Enterprise Analytics & Performance Marketing Frameworks

The Platform utilizes enterprise tools provided by Google LLC, Meta Platforms Inc., and Microsoft Corporation to evaluate site performance and track ad delivery. Data generated by these tags is typically transmitted to and stored on servers located within the United States. To safeguard this data, the Institute mandates the deployment of EU Standard Contractual Clauses (SCCs), enforced network layer IP anonymization, and structural pseudonymization prior to data transit.

5.2 Monetization and Ad-Tech Optimization via Ezoic Inc.

The Platform utilizes the specialized optimization and ad-delivery infrastructure of Ezoic Inc. (6023 Innovation Way, Carlsbad, CA 92009, USA). Ezoic functions as an optimization partner, employing automated algorithms to evaluate ad-tech efficiency and user-experience parameters.

  • Ezoic may collect and log anonymized behavioral metrics, device finger-printing data, and automated interaction patterns.
  • For thorough information regarding Ezoic’s automated data pipeline and regulatory adherence, please review their official documentation directly at: https://g.ezoic.net/privacy/testberichteinstitut.de.

5.3 Algorithmic Affiliate Network Architecture

The Platform features contextual research reviews containing affiliate referral links linked to networks like Amazon Associates, Awin, and others. When a user clicks these links, tracking scripts log the click to attribute potential commissions. This processing relies on the user’s explicit consent or the Institute’s legitimate commercial interest in self-sustaining funding, provided it complies with local jurisdictions.

Section 6: Sovereign International Data Transfers and Transatlantic Safeguards

Testberichteinstitut LLC is incorporated and headquartered within the jurisdiction of the State of Wyoming, United States of America. Consequently, data collected globally or within the EEA may be transferred to, processed in, and archived on servers situated in the United States.

Recognizing that United States data protection laws may differ structurally from the comprehensive standards of the European Union, the Institute enforces a robust layer of technical and contractual safeguards:

  1. Contractual Frameworks: Enactment of the European Commission’s approved Standard Contractual Clauses (SCCs) for controller-to-controller or controller-to-processor transfers.
  2. Technical Shielding Measures: Immediate gateway-level encryption via TLS/AES-256 protocols, localized network IP-masking routines, and complete separation of personal account identifiers from public research records.
  3. Judicial Scrutiny: The Institute pledges to resist overly broad or legally deficient data access requests from foreign government agencies, using all available legal avenues to protect user data integrity.

Section 7: Definitive Data Retention and Archival Protocols

Personal data processed by the Institute is stored only for the duration necessary to fulfill the specific purposes outlined in Section 3, or to satisfy statutory archiving obligations.

  • System Access Logs: Retained for a maximum period of 30 days, after which they are automatically purged, unless flagged for cyber-forensic investigation.
  • Corporate Account Profiles & Active Registry Data: Retained continuously for the duration of the active membership. Upon contract termination, data is either permanently deleted or anonymized within 60 days, subject to applicable tax or corporate record retention laws.
  • Communications Data: Retained for up to 3 years following the closure of the final communication cycle, in compliance with statutory limitation periods.

Section 8: Universal Rights of Data Subjects (EEA, Switzerland, and Global)

Pursuant to the GDPR, FADP, and equivalent global privacy frameworks, individuals whose data is processed by the Institute possess the following enforceable legal rights:

  • Right of Access (Art. 15 GDPR): The right to obtain comprehensive confirmation as to whether personal data is being processed, and to receive a detailed copy of that data.
  • Right to Rectification (Art. 16 GDPR): The right to demand the immediate correction of inaccurate or incomplete personal information.
  • Right to Erasure / „Right to be Forgotten“ (Art. 17 GDPR): The right to secure the permanent deletion of personal records, provided specific statutory grounds are met.
  • Right to Restriction of Processing (Art. 18 GDPR): The right to restrict data processing under specific legal disputes.
  • Right to Data Portability (Art. 20 GDPR): The right to receive personal data in a structured, commonly used, and machine-readable format.
  • Right to Object (Art. 21 GDPR): The absolute right to object to data processing based on legitimate interests or direct marketing purposes.

To exercise these rights, please submit a formal request to our Compliance Department at [email protected]. The Institute will evaluate and process your request within the statutory 30-day timeframe. Furthermore, data subjects retain the right to lodge a formal complaint with a competent Data Protection Supervisory Authority within the EU or EEA.

Section 9: Specific Jurisdictional Addenda

9.1 California Privacy Rights Notice (CCPA / CPRA Compliance)

  • No Commercial Sale of Data: Testberichteinstitut LLC explicitly does not sell personal data, corporate profiles, or executive contact metrics to third-party data brokers.
  • Cross-Context Behavioral Advertising („Sharing“): The deployment of advanced marketing and analytics pixels may be legally classified as „sharing“ under California law. California residents may exercise their right to block these transfers by engaging the „Do Not Sell or Share My Personal Information“ protocol embedded within our interactive Cookie Preference Center.

Section 10: Structural Changes and Version Control

The Institute reserves the right to amend this Privacy Policy to reflect evolving legal precedents, shifting regulatory mandates, or technological updates. The current, legally binding version is hosted continuously at: testberichteinstitut.de/datenschutz.

PART II: SYSTEMIC COMMERCIAL TERMS OF SERVICE (ToS)

Effective Date: September 1, 2025

Contractual Parties: Testberichteinstitut LLC (the „Provider“) and the Registering Corporate Entity (the „Customer“)

Section 1: Institutional Scope of Services and Regulatory Limits

1.1 Testberichteinstitut LLC operates an independent digital platform dedicated to international market research, corporate transparency, and executive evaluation. The Provider offers business-to-business (B2B) subscription modules, including the Premium Profile and the FAIR BUSINESS integration package.

1.2 The scope of services provided under an active contract includes:

  • The provisioning of structured digital layouts for the presentation of verified corporate data.
  • The technical publishing of independent, executive-level authority profiles.
  • The eligibility to apply for official institutional quality seal evaluations.
  • Systemic optimization for search engine indexing via structured semantic data schemas (SEO Management).

1.3 Explicit Service Limitations: The contractual relationship between the Parties is strictly limited to directory infrastructure and data verification. The Provider does not operate as a public relations agency, marketing firm, or search engine manipulation service. The contract does not guarantee specific web traffic metrics, operational revenue growth, commercial conversion milestones, or a specific ranking position within any third-party search engine index.

1.4 Editorial Integrity Protection: The Provider maintains total, uncompromised editorial independence. The purchase of a Premium Profile or FAIR BUSINESS package does not influence, bias, or alter the outcome of any independent evaluation conducted by our research teams. The Provider reserves the right to decline, suspend, or terminate any corporate listing that conflicts with applicable international law, violates ethical corporate standards, or fails to meet the Institute’s strict verification criteria.

Section 2: Formally Binding Contract Formation

2.1 The contractual relationship is exclusive to business entities (B2B). Consumers, as defined under local consumer protection statutes, are barred from purchasing commercial memberships. By initiating the order process, the Customer warrants their status as a legitimate business entity or authorized corporate representative.

2.2 A legally binding, enforceable contract is established when the Customer successfully completes the online onboarding interface and clicks the primary transaction button labeled „Order with obligation to pay“ (or unambiguous equivalent phrasing).

2.3 Upon successful execution of the transaction, the Provider’s automated systems generate and transmit an electronic Akkreditierungs-Bestätigung (Order Confirmation & Digital Invoice) to the email domain specified by the Customer. This transmission constitutes formal contractual acceptance.

2.4 No ancillary verbal agreements, oral representations, or side-letters exist. Any structural variance from these Terms requires an explicit written instrument signed by a legally authorized director of Testberichteinstitut LLC.

Section 3: Premium Pricing Architecture, Non-Profit Cost Allocation, and Subscription Mechanics

3.1 The commercial pricing model for the Premium Profile and FAIR BUSINESS integration operates on a recurring subscription model. The baseline fee is structured at €29.90 per month (or the corresponding currency equivalent displayed during checkout).

3.2 Non-Profit Foundation: The pricing structure is engineered purely as an infrastructure cost-allocation model. Fees collected are used exclusively to offset direct operational expenditures, including secure data hosting, database integrity upgrades, ongoing SEO adjustments, and the maintenance of our validation registers.

3.3 Billing Cycles: The subscription fee is billed automatically and in advance at the start of each billing period.

3.4 Contractual Duration and Termination Rights: The contract is established for an indefinite term and features no minimum contract duration. The Customer retains the absolute right to terminate the subscription at any time. Termination notices must be submitted via the self-service account management panel or by transmitting an explicit electronic termination request to [email protected].

3.5 Effects of Termination: Upon processing a valid termination notice, the subscription remains active until the conclusion of the current prepaid billing period. At that point, all premium features, automated database schemas, and quality seal licensing rights expire immediately. The profile will revert to a standardized, basic informational listing.

Section 4: Advanced Payment Protocols and Financial Remedies

4.1 Financial transactions are routed through our secure, PCI-DSS compliant third-party payment infrastructure (e.g., Stripe Payments). By entering payment credentials, the Customer authorizes continuous, recurring charges aligned with their active billing cycles.

4.2 Default Remedies: If a recurring charge fails due to insufficient funds, card expiration, or unauthorized chargeback attempts, the Customer falls into immediate default. The Provider reserves the absolute right to suspend all premium features, obscure database visibility, and strip SEO metadata schemas within 48 hours of a failed payment event, without relieving the Customer of outstanding payment obligations.

4.3 The Customer bears sole responsibility for maintaining accurate, up-to-date, and valid billing and payment data within the Provider’s secure financial portal.

Section 5: Content Integrity, Indemnification, and Customer Warranties

5.1 The Customer retains exclusive, unrestricted civil and criminal liability for the accuracy, completeness, and legal compliance of all assets, data points, text strings, and graphic files submitted to the Platform. This includes company descriptions, logos, trademark claims, executive biographies, and advertising texts.

5.2 Customer Warranties: The Customer explicitly warrants and covenants that:

  • All provided corporate data is factual, precise, and current.
  • They possess all necessary intellectual property rights, licenses, and clearances to display the submitted materials.
  • The display of these assets does not infringe upon the intellectual property rights, privacy rights, or trade secret protections of any third party worldwide.

5.3 Indemnification Clause: The Customer agrees to fully indemnify, defend, and hold harmless Testberichteinstitut LLC, its corporate directors, officers, employees, and academic fellows from and against any and all third-party civil claims, losses, damages, liabilities, regulatory fines, and legal defense costs arising from or relating to the content provided by the Customer. This indemnification covers claims regarding trademark infringement, copyright violations, unfair competition, or false advertising.

Section 6: Quality Seal Licensing Regulations

6.1 In the event that a Customer’s corporate or operational standards satisfy the Institute’s specific evaluation criteria, the Provider may grant an official quality seal („Geprüft vom Testberichteinstitut“).

6.2 License Grant: Upon official conferral, the Customer is granted a non-exclusive, non-transferable, revocable, and strictly limited license to utilize the quality seal image and associated verification metrics for corporate branding purposes. This license allows usage on the Customer’s primary web domain, corporate presentations, and physical business documentation.

6.3 Temporal Limitations: The validity of the license is tied strictly to an active, fully paid subscription. The quality seal contains a visible annual timestamp and requires an annual re-audit.

6.4 Immediate Termination of License: Upon subscription termination, contract expiration, or a formal revocation event issued by our quality assurance team, the license terminates automatically. The Customer must remove the seal from all digital domains and stop distributing documents featuring it within 5 business days. Continued unauthorized use of the seal will trigger immediate legal action, contractual penalties, and public notice of trademark misuse.

Section 7: Limitation of Liability and Comprehensive Indemnity Ceiling

7.1 Testberichteinstitut LLC shall not be liable for damages resulting from standard operational interactions, platform downtime, or data indexing variances. The Provider accepts liability only for damages arising directly from intentional corporate misconduct (Vorsatz) or gross negligence (grobe Fahrlässigkeit).

7.2 Exclusion of Consequential Damages: To the maximum extent permitted by applicable law, the Provider shall under no circumstances be liable to the Customer for indirect, incidental, punitive, exemplary, special, or consequential damages. This includes total exclusion of liability for lost corporate profits, loss of data, business interruptions, third-party search engine penalties, or diminished corporate reputation.

7.3 Liability Cap: In any event, the total aggregate financial liability of Testberichteinstitut LLC for any contractual, tortious, or statutory claims arising out of or related to this agreement shall be strictly capped at and limited to the exact total financial amount paid by the Customer to the Provider within the 12-month period immediately preceding the event giving rise to liability.

Section 8: Statutory Governing Law, Contractual Venue, and International Jurisdiction

8.1 This contractual agreement, its execution, and all disputes arising from or in connection with it shall be governed exclusively by the laws of the State of Wyoming, United States of America, without regard to its conflict-of-law principles. The application of the United Nations Convention on Contracts for the International Sale of Goods (CISG) is explicitly excluded.

8.2 Exclusive Venue: The Parties agree that any legal actions, claims, or judicial proceedings arising directly or indirectly out of this contract must be filed exclusively in the state or federal courts located within the State of Wyoming, USA. The Parties hereby submit to the exclusive personal jurisdiction of these courts.

8.3 Severability Clause: If any individual provision of these Terms is determined by a court of competent jurisdiction to be legally invalid, void, or unenforceable, that ruling shall not affect the validity of the remaining provisions. The invalid provision will be replaced by a valid, enforceable clause that closest matches the original commercial intent of the Parties.

Section 9: Modifications to the Terms of Service

The Provider reserves the right to modify these Terms at any time by publishing updated text on the Platform and providing reasonable notice via email to active subscribers. Continued use of the Premium Profile or FAIR BUSINESS services following the effective date of an update constitutes complete, legally binding acceptance of the revised Terms.